This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 82%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBM%3C/text%3E%3C/svg%3E)
Hello friends!
I want your help to resolve the error message below when I try to create a migration endpoint in Exchange 2016.
Error received when terminating hybrid Configuration wizard:
HCW8078 Migration Endpoint could not be created.
Microsoft.Exchange.Migration.MigrationServerConnectionFailedException
The connection to the server 'myserver.com' could not be completed. Microsoft.Exchange.MailboxReplicationService.MRSRemoteTransientException
The call to 'https://myserver.com/EWS/mrsproxy.svc' failed. Error details: Access is denied..
Microsoft.Exchange.MailboxReplicationService.MRSRemotePermanentException
Access is denied.
Checks performed:
Opened ports in the firewall;
active MRSproxy;
Permissions set correctly for the EWS directory;
All updates applied on Windows and Exchange;
Admincount set to zero;
MSExchangeServicesAppPool recycled and IIS restarted;
There is no migration endpoint created, so it's not a credential issue;
I did the connectivity test on https://testconnectivity.microsoft.com/ and the result was success without errors.
If anyone has any guesses and can help, I'd be very grateful!
I need to find the light at the end of the tunnel, because this problem is taking my peace.
I would suggest you take steps below to narrow down this issue:
Hi @KyleXu-MSFT !
I followed the steps you suggested but unfortunately I keep getting the same error.
I disabled IE Enhanced.
I created a new email account.
Everything is released in the firewall.
In relation to the adminacount it is like '<not set>', but as I had already tried absolutely everything I decided to change it to '0', but it didn't work either, as a return to the previous state?
error below:
Did you try to create a new migration endpoint from Exchange online admin center manually?
I tried to create but without success, I got the error below:
I have the impression that I have already consulted all the cases similar to mine, but I have not found any similar with a solution available. I have an open case in support at Microsoft, but the process is slow.
If you have any other suggestions or ways to go I would be happy to hear from you.
I noticed that when I try to access the page https://mail.myserver.com/EWS/mrsproxy.svc, the login page loads, but after logging in I get the error 400, as shown in the image below:
I want to confirm with your that whether there exist other Exchange in your organization? If there also exist Exchange 2010 in your organization, you need to point DNS record to Exchange 2016 and use Exchange 2016 as the internet facing server.
Whether there exist issue with you try to access from internal of your organization with https://ExchangeFQDN/EWS/mrsproxy.svc?
We had a 2010 exchange, but we had a problem and it is currently down, we are trying to recover this server.
Regarding DNS it is currently pointing to Exchange 2016, both externally and internally.
When I try to access internally using the server's internal IP I get the same error after login:
I double check from my lab and get the same result (I could create migration endpoint successfully), if you want to check EWS virtual directory, you need to use "https://FQDN/EWS/Exchange.asmx"
If you cannot access this link, I would suggest you try to recreate EWS virtual directory.
Regarding DNS it is currently pointing to Exchange 2016, both externally and internally.
After modifying a DNS record, you need to wait for a while before it takes effect. Make sure all DNS records points to Exchange 2016 and mailbox is hosted on Exchange 2016 database.
Hi @KyleXu-MSFT !
I tested "https://FQDN/EWS/Exchange.asmx" and it is accessible internally and externally.
Any new suggestions?
This question is really being a mystery to me, I don't know what else to do.
About this one, I think we may need try to recreate EWS Virtual Directory to check whether there is it related to EWS configuration. Remember to enable mrsproxy after recreating.
Please Note: Since the web site is not hosted by Microsoft, the link may change without notice. Microsoft does not guarantee the accuracy of this information.
Hi @Brunno Martins ,
Have you tried the following method?
Hi @T. Kujala !
I can't access the given link, can you send it again?
There are a few points which you need to check.
Also, check joyceshen-MSFT answer in this thread - https://video2.skills-academy.com/en-us/answers/questions/353681/hcw8078-migration-endpoint-could-not-be-created.html
Hi @Amit Singh !
Exchange Server is working, Outlook Anywhere is working too.
The credentials are set correctly and the permissions are apparently ok too.
I don't have HTTP redirect to EWS.
Basic and Windows authentication are enabled.
Regarding the certificate, I have a question, I have the certificate for my current Exchange 2016 server, I exported this certificate from the old Exchange 2010 server that died, how can I validate if the internal hostname is in the certificate?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(214.4, 76%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
The EXO team has a great blogpost troubleshooting exactly such issues (Access Denied, Timeout, TLS, ...):